| gabriel rosenkoetter on Sun, 23 Dec 2001 20:20:11 +0100 |
|
On Sun, Dec 23, 2001 at 02:28:21PM +0000, jbeck@jbwd.net wrote: > *If SSH is included in the default install - how do I tell if it is > installed? which ssh or which sshd. It'll be in /usr/bin and /usr/sbin, probably. (Maybe /usr/local/[s]bin.) There's probably some rpm -q<blah> command to check, but I don't know it. (rpm -q ssh might be enough.) > *Once installed, do I need to configure it? How? A default /etc/ssh_config and /etc/sshd_config would be a good idea. Your distro probably installed some defaults (and they may be in /etc/ssh instead of just out in /etc). A minmial ssh_config looks like: Host * ForwardX11 no ForwardAgent no Protocol 2,1 A minimal /etc/sshd_config looks like: Port 22 Protocol 2,1 PermitRootLogin no X11Forwarding yes RhostsAuthentication no RhostsRSAAuthentication no Ciphers blowfish-cbc,aes128-cbc,cast128-cbc,3des-cbc,arcfour (The Ciphers line will keep you from inconveniently booting poorly-implemented SSH-1 clients who crash when told to use a 128-bit cipher. If you'd prefer to use the aes128-cbc cipher, which is the usual standard, you can set specify it as the Cipher on the client side's config, either in /etc/ssh_config or in ~/.ssh/config.) You should read ssh(1) and sshd(8) so that you know what these options mean and what other possibilities are available. > *Does anything need to be done on the computer I am connecting from (a > Windows computer) - I guess I need client software - can anyone recommend > anything? Oh. Windows. Well, try to find an SSH-2 client, if you can. (SSH-1, the protocol, is vulnerable to sniffing and packet prediction.) > Just for reference, the main purpose of this is so that I can create test > sites on the windows computer, and publish them to the RH 7.1 computer for > testing purposes... Like I said, everything is internal, behind a hardware > firewall. Why is ssh necessary for this? Woudln't ftp serve your purpose better? (I am assuming that by "site" here you mean a world wide web page.) -- gabriel rosenkoetter gr@eclipsed.net Attachment:
pgphl0poZ2C6E.pgp
|
|